{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2025-8964","assignerOrgId":"1af790b2-7ee1-4545-860a-a788eba489b5","state":"PUBLISHED","assignerShortName":"VulDB","dateReserved":"2025-08-13T16:08:35.023Z","datePublished":"2025-08-14T15:02:10.449Z","dateUpdated":"2025-08-14T19:43:03.974Z"},"containers":{"cna":{"providerMetadata":{"orgId":"1af790b2-7ee1-4545-860a-a788eba489b5","shortName":"VulDB","dateUpdated":"2025-08-14T15:02:10.449Z"},"title":"code-projects Hostel Management System Login hostel_manage.exe improper authentication","problemTypes":[{"descriptions":[{"type":"CWE","cweId":"CWE-287","lang":"en","description":"Improper Authentication"}]}],"affected":[{"vendor":"code-projects","product":"Hostel Management System","versions":[{"version":"1.0","status":"affected"}],"modules":["Login"]}],"descriptions":[{"lang":"en","value":"A vulnerability was identified in code-projects Hostel Management System 1.0. This affects an unknown part of the file hostel_manage.exe of the component Login. The manipulation leads to improper authentication. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used."},{"lang":"de","value":"Betroffen hiervon ist ein unbekannter Ablauf der Datei hostel_manage.exe der Komponente Login. Mit der Manipulation mit unbekannten Daten kann eine improper authentication-Schwachstelle ausgenutzt werden. Der Angriff muss lokal erfolgen. Der Exploit steht zur öffentlichen Verfügung."}],"metrics":[{"cvssV4_0":{"version":"4.0","baseScore":4.8,"vectorString":"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P","baseSeverity":"MEDIUM"}},{"cvssV3_1":{"version":"3.1","baseScore":5.3,"vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R","baseSeverity":"MEDIUM"}},{"cvssV3_0":{"version":"3.0","baseScore":5.3,"vectorString":"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R","baseSeverity":"MEDIUM"}},{"cvssV2_0":{"version":"2.0","baseScore":4.3,"vectorString":"AV:L/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR"}}],"timeline":[{"time":"2025-08-13T00:00:00.000Z","lang":"en","value":"Advisory disclosed"},{"time":"2025-08-13T02:00:00.000Z","lang":"en","value":"VulDB entry created"},{"time":"2025-08-14T16:28:30.000Z","lang":"en","value":"VulDB entry last update"}],"credits":[{"lang":"en","value":"jiucai (VulDB User)","type":"reporter"}],"references":[{"url":"https://vuldb.com/?id.319959","name":"VDB-319959 | code-projects Hostel Management System Login hostel_manage.exe improper authentication","tags":["vdb-entry"]},{"url":"https://vuldb.com/?ctiid.319959","name":"VDB-319959 | CTI Indicators (IOB, IOC, IOA)","tags":["signature","permissions-required"]},{"url":"https://vuldb.com/?submit.628030","name":"Submit #628030 | code-projects Hostel Management System In C Programming With Source Code By Fabian Ros / May 25, 2025 1 Logical flaw","tags":["third-party-advisory"]},{"url":"https://www.yuque.com/gongzi-jsnek/xb2q3a/ip83oyxdztulfuzx?singleDoc","tags":["related"]},{"url":"https://www.yuque.com/gongzi-jsnek/xb2q3a/ip83oyxdztulfuzx#vulnerability-details-and-poc","tags":["exploit"]},{"url":"https://code-projects.org/","tags":["product"]}]},"adp":[{"references":[{"url":"https://www.yuque.com/gongzi-jsnek/xb2q3a/ip83oyxdztulfuzx#vulnerability-details-and-poc","tags":["exploit"]},{"url":"https://www.yuque.com/gongzi-jsnek/xb2q3a/ip83oyxdztulfuzx?singleDoc#","tags":["exploit"]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2025-08-14T19:42:59.489119Z","id":"CVE-2025-8964","options":[{"Exploitation":"poc"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-08-14T19:43:03.974Z"}}]}}